tartufo
« Back to VersTracker
Description:
Searches through git repositories for high entropy strings and secrets
Type: Formula  |  Latest Version: 5.0.2@0  |  Tracked Since: Oct 12, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security secrets-detection git scanning devsecops
Install: brew install tartufo
About:
Tartufo is a secrets scanning tool designed to detect high entropy strings and potential secrets within git repositories. It scans the entire commit history to identify sensitive data that may have been accidentally committed, providing a robust security layer for development workflows.
Key Features:
  • Scans git history for secrets and high entropy strings
  • Configurable entropy thresholds and regex patterns
  • Supports pre-commit hooks and CI/CD integration
  • Can scan specific files or entire repositories
Use Cases:
  • Preventing secrets from being committed to version control
  • Auditing existing repositories for historical data leaks
  • CI/CD pipeline security scanning
Alternatives:
  • truffleHog – Similar functionality, but tartufo offers more granular configuration options
  • gitleaks – More widely adopted with broader rule sets, tartufo focuses on entropy-based detection
Version History
Detected Version Rev Change Commit
Oct 12, 2025 10:21am 0 VERSION_BUMP 1fc5f774
Jan 3, 2025 1:22am 0 VERSION_BUMP ba8fa2c4
Jan 2, 2025 8:01pm 0 VERSION_BUMP 438dba43
« Back to VersTracker  |  Browse Packages  |  About